OBSOLETE - see http://xtechnotes.blogspot.com/2011/08/news-security.html
This article consist of links to other sites or blogs about RSA news:
This article consist of links to other sites or blogs about RSA news:
Written on April 1, 2011 by
"The first thing actors like those behind the APT do is seek publicly available information about specific employees – social media sites are always a favorite. With that in hand they then send that user a Spear Phishing email. Often the email uses target-relevant content; for instance, if you’re in the finance department, it may talk about some advice on regulatory controls.
The attacker in this case sent two different phishing emails over a two-day period. The two emails were sent to two small groups of employees; you wouldn’t consider these users particularly high profile or high value targets. The email subject line read “2011 Recruitment Plan.”............
Posts
